Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FAD1ED70E5C711EEAB81571BC4F9AE02.roa
File: FAD1ED70E5C711EEAB81571BC4F9AE02.roa (raw, json)
Hash identifier: lYXpytiUYWsC3o+lOvAoNk4GRkwseizqnYRndzLQMtk=
Subject key identifier: 76:A9:D3:97:8E:24:F4:CF:9A:17:CB:B4:96:B2:F1:1B:17:0B:60:1E
Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Certificate serial: 1001
Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FAD1ED70E5C711EEAB81571BC4F9AE02.roa
Signing time: Tue 19 Mar 2024 08:09:16 +0000
ROA not before: Tue 19 Mar 2024 08:09:16 +0000
ROA not after: Tue 30 Jul 2024 00:00:00 +0000
asID: 140900
IP address blocks: 113.203.209.0/24 maxlen: 24
113.203.246.0/24 maxlen: 24
223.29.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 11:39:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4097 (0x1001)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4
Validity
Not Before: Mar 19 08:09:16 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=65f9482c-ceec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d1:b1:9a:f7:c0:4f:a2:9c:c6:dc:21:fa:d0:
fc:ac:ac:0e:49:fc:6f:dd:21:96:ea:f8:c3:ab:96:
8e:22:00:2e:2c:e6:32:72:ba:e0:03:15:a5:e0:a1:
4e:c0:c1:db:50:77:57:67:0d:af:f6:7f:8e:dd:66:
42:47:a3:3e:b4:85:9c:ba:d5:a2:ec:7b:e4:dc:a1:
12:5a:d2:c9:4a:93:e6:5b:69:30:d0:48:2a:9c:a7:
20:ce:63:ee:59:b0:67:84:11:6b:59:42:cd:ec:1a:
5e:50:bd:de:79:cc:3e:a5:9d:75:18:06:6b:4e:e3:
70:08:e7:7d:38:3a:7a:4e:6e:84:72:23:11:81:68:
9b:c3:94:0f:8e:b2:22:0a:e2:ae:ba:e3:c9:7c:6e:
19:58:01:66:6c:30:5b:c3:30:c8:f1:46:0c:48:d8:
ff:bf:be:60:53:94:4a:b0:bf:47:e2:65:f7:c9:54:
a7:65:19:95:be:09:44:bd:05:a1:93:bb:12:e4:a9:
37:28:b7:d4:e3:41:63:35:1f:18:94:09:25:26:bb:
33:c5:d2:ca:26:cf:c7:b7:ea:d5:b8:8f:c1:fd:5c:
35:db:32:97:b2:d0:dc:b3:bb:60:b8:64:e6:7f:20:
29:06:1b:af:39:ce:33:f9:40:00:f6:fb:21:2a:e2:
e1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A9:D3:97:8E:24:F4:CF:9A:17:CB:B4:96:B2:F1:1B:17:0B:60:1E
X509v3 Authority Key Identifier:
keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/FAD1ED70E5C711EEAB81571BC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
113.203.209.0/24
113.203.246.0/24
223.29.239.0/24
Signature Algorithm: sha256WithRSAEncryption
79:5a:35:8e:2a:16:ec:d2:c3:85:1d:1d:10:1d:e1:07:b7:9e:
fe:a3:aa:01:f2:fb:d7:cf:3b:55:86:84:63:34:7f:79:47:3e:
1b:50:ac:c6:bf:a0:cd:d4:bf:98:4f:dd:4b:78:f6:bb:60:42:
bd:48:62:ce:55:1c:ae:27:50:b5:df:32:2d:a7:2c:99:f2:eb:
5f:64:12:0b:fc:b3:1e:58:f6:9b:5b:71:d2:b1:18:14:b1:64:
73:ba:15:9b:90:d7:78:2f:ab:bf:8b:b3:d1:9c:bd:d4:39:98:
fb:85:33:a5:57:96:f2:d1:b4:8f:ed:52:95:db:16:b9:5b:b2:
bc:32:0b:82:1c:95:05:c4:74:e4:c6:88:13:e0:51:be:26:60:
67:bc:a5:0b:fe:27:96:24:b3:47:02:f5:f4:10:0a:ae:9a:86:
1f:bc:39:07:d1:0d:b4:ca:f4:00:23:b4:bc:46:2c:ba:50:16:
1f:1d:79:6c:64:d4:ff:cc:e2:b4:fa:2f:77:50:c6:f1:97:a5:
14:7b:2b:3b:e0:66:c7:f0:bd:e1:5d:d5:26:a4:7e:a9:09:9f:
8a:87:82:11:2a:f1:ac:57:6b:fc:f5:31:b0:3b:1f:65:c4:dc:
6c:6a:bb:69:f1:3d:b1:31:6d:5e:c8:c0:ca:8f:2d:7d:80:0a:
f8:0f:c0:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 13:50:28 2024 by rpki-client on console-fra.rpki-client.org